NSSCryptoModuleSpec/Section 7: Cryptographic Key Management
Jump to navigation
Jump to search
This is a draft document
|
Document Description |
DTR Section |
Assessment |
Status |
|---|---|---|---|
| Specification of all aspects of key management; key material, key generation, key distribution, key entry & output, key storage, key destruction, key archiving |
thru VE.07.17.01 VE.07.19.01 VE.07.24.01 VE.07.39.01 VE.07.40.01 VE.07.41.01 VE.07.42.01 |
Key Management | |
| Description of key protection | Key Management | ||
| Proof of FIPS approved key generation - Provide a validation certificate from a NIST- accredited laboratory. | Key Generation | ||
| Random number generator description | VE.07.09.01 | RNG | |
| Random number generator test | VE.07.08.01 | ||
| Proof/affirmation that key distribution is FIPS approved - Provide a validation certificate issued by a NIST-accredited laboratory or provide written affirmation that the key distribution technique is FIPS-approved. | (N/A) | ||
| Documentation of means to ensure entity association of stored keys | Entity Association Assurance | ||
| Manually distributed secret keys | (N/A) | ||
| Manually distributed secret key procedures | (N/A) | ||
| Key generation |
VE.07.18.01 VE.07.21.01 VE.07.23.01 VE.07.25.01 VE.07.27.01 VE.07.28.01 VE.07.29.01 |
(N/A) |
Return to: NSSCryptoModuleSpec